CVE-2022-1380

Publication date

2022-04-16 11:30:20

Family

@huntrdev

State

PUBLISHED

Description

Stored Cross Site Scripting vulnerability in Item name parameter in GitHub repository snipe/snipe-it prior to v5.4.3. The vulnerability is capable of stolen the user Cookie.